How to Run Your Own Mail Server (2017)

I run my own mail infrastructure. To say the least I wouldn&#x27;t recommend it even to my worst enemies. It&#x27;s horrible.<p>Actually it&#x27;s fine until it&#x27;s not. Then your email doesn&#x27;t work and you could be missing out on important communications. And then you&#x27;re scrambling to figure out how the spammers managed to exploit your setup this time. And you have to learn a tonne of crap in order to manage it... and the text files! Configuration... configuration everywhere. Obscure configuration. Configuration that has real consequences and causes spooky action at a distance. Configuration that will soon be exploited in strange ways.<p>I was so frustrated the last time my mail server went down that I started writing an SMTP protocol handler in Haskell with the intent of writing a MTA with the goal of minimizing configuration and being secure and resistant to attacks by default. So that hopefully more people <i>can</i> run their own infrastructure without prematurely aging. I dunno how useful it will be to others but at least it will keep my gray hairs at bay, I hope, when it&#x27;s ready for use.<p>Until then though we need more guides like this for us poor souls who do go down this route. There are way too many out-dated guides awash in the sea of information.

&gt; Before we dive in, an important caveat: You will become a sysadmin of your own mail server.<p>This for me is the deal breaker. I say this as a sysadmin.<p>It&#x27;s all well and good running a single server but if that shits the bed then you have to deal with it immediately.<p>So to run something that doesn&#x27;t require 24&#x2F;7 support I now have to run a cluster of servers.<p>I&#x27;ll also need something to manage those servers like salt&#x2F;ansible&#x2F;puppet<p>I also need to deal with being my IP blacklisted because of a previous owner, or just entire domains now delivering my email because they don&#x27;t like the fact i&#x27;m not using $email provider<p>Then there is spam filtering and the constant battle that is.<p>Or I could just pay someone a couple of bucks a month to worry about all that shit and not worry about it.

Yeesh, there&#x27;s so much involved.<p>I&#x27;ve been running my own mail server with <a href="https:&#x2F;&#x2F;mailinabox.email" rel="nofollow">https:&#x2F;&#x2F;mailinabox.email</a> for ~2 years and can heartily recommend it.<p>Still, even with that there are gotchas if you want to be able to send messages from your server to Google et al, eg. reverse-DNS-records, DKIM, SPF.<p>Not for the pressed-for-time.

I&#x27;m surprised by how many people think mail is an impossibly hard problem. There some things about mail that are stupid; the core protocols are old and it shows. But, once things are working, you can leave it alone for years (aside from regular software updates) without trouble. I have. I&#x27;ve never not run my own mail servers (and often for several other people&#x2F;companies&#x2F;projects, as well) in the past 20 years. I used to consider myself an expert on the topic, but it&#x27;s required so little of my time&#x2F;thought in the past several years that I&#x27;ve forgotten most of that expertise.<p>I think what I&#x27;m trying to say is that it&#x27;s not harder than it used to be (though some problems, like spam and security requirements for safety, have gotten worse in absolute terms). With modern tools and packaging on modern Linux distributions, you can be up and running pretty quickly. My company ships a turn-key solution as part of Virtualmin, but you can build something similar without that in an afternoon or two if you&#x27;re reasonably Linux-savvy and have some notion of how all the pieces fit together (maybe a couple extra afternoons if you don&#x27;t know the basics; DKIM and SPF can be tricky, since you also have to know or learn you some DNS).<p>It&#x27;s harder than a web server or DNS server, but not something you should flee in terror from. Admittedly, it&#x27;s gotten cheaper in recent years to outsource it...and with microservice-based architectures, maybe it makes more sense to have some other API than SMTP (though SMTP is very easy to use from every language I&#x27;ve ever worked in). But, there are problems and complexities with outsourcing, as well.

I&#x27;ve done this before. It&#x27;s a pain in the ass. You have to run several different programs each with hundreds of configuration options, make sure the different programs can communicate with each other properly, make sure your email doesn&#x27;t get flagged as spam, and be your own sysadmin. All for marginal benefit.<p>It would be great if someone wrote a program handling all of this that could be deployed as a single binary with secure defaults and limited configurability, but I don&#x27;t see that happening any time soon. Email providers are good enough for almost everyone and the people who are good enough programmers to make sense of all the different protocols they&#x27;ll have to deal with and get everything to interoperate nicely probably have other things to work on that people will actually pay for.<p>Edit: That said, this guide does look like a great resource for someone who is interested in doing this. It&#x27;s interesting to learn how email works and if I had this guide when I started out I&#x27;d have saved a ton of time.

I&#x27;ve run my own mail server ever since I got something resembling broadband internet in 1996. Back then spam was non-existent, Sendmail was the emperor without clothes about to be dethroned and I hacked <i>sendmail.cf</i> without needing to look at the the bible [1].<p>I&#x27;ve never regretted running my own server, nor have I ever contemplated moving to a hosted solution. Spam is not a problem either, Spamassassin in combination with a greylist make for a nearly spam-free experience. The whole setup has been migrated from the original Pentium-66 via an aBit-BP6 (SMP for the masses [2], retired in 2009) to the current Intel SS-4200 (upgraded to a dual-core Pentium but still limited to 2GB). In practice a Raspberry Pi would be enough to run a viable mail server so even this rather anaemic setup does its job without breaking a sweat.<p>The whole setup consists of Debian (Sid) running Exim through a smarthost, feeding through Spamassassin + greylistd into Dovecot. Apart from some auto-manual intervention to cope with Microsoft&#x2F;Google&#x2F;... not coping with the greylisting and thus needing whitelisting it more or less <i>just works</i>. In other words, just go ahead and run your own server.<p>[1] <a href="http:&#x2F;&#x2F;shop.oreilly.com&#x2F;product&#x2F;9780596510299.do" rel="nofollow">http:&#x2F;&#x2F;shop.oreilly.com&#x2F;product&#x2F;9780596510299.do</a><p>[2] <a href="https:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;ABIT_BP6" rel="nofollow">https:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;ABIT_BP6</a><p>[3] <a href="http:&#x2F;&#x2F;ss4200.pbworks.com&#x2F;w&#x2F;page&#x2F;5122751&#x2F;FrontPage" rel="nofollow">http:&#x2F;&#x2F;ss4200.pbworks.com&#x2F;w&#x2F;page&#x2F;5122751&#x2F;FrontPage</a>

This is an interesting write-up, but doing it like this files like way too much work.<p>I have been using mailcow[0] for years now and it does all of this for me and works great. The UI is beautiful and intuitive. And setting up mailcow literally takes a few of minutes, since the project was ported to docker. Highly recommend it.<p>[0] <a href="https:&#x2F;&#x2F;github.com&#x2F;mailcow&#x2F;mailcow-dockerized" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;mailcow&#x2F;mailcow-dockerized</a>

How to run your own mail server: Don&#x27;t.<p>How to run your own mail server (for experts): Don&#x27;t.<p>I say this as someone who has run my own mail server for 20+ years.<p>Now, if you absolutely have to get off Google, and the other available hosted options don&#x27;t work for you, then this article looks like a good start. I&#x27;d add roundcube for web access and letsencrypt for SSL.<p>One thing you&#x27;ll never really get, in my experience, is good spam handling. The big providers just have so much more data to work with to prevent spam.

&gt; on FreeBSD using Postfix, Dovecot, Rspamd, and LDAP.<p>That seems like an awful amount of work &#x2F; overkill. This is not a good introduction for a normal geek, and die-hard open source fans will figure it out without too much trouble anyway.<p>Postfix is not the best choice for novices, FreeBSD is not the most well-supported&#x2F;documented system just because it&#x27;s not as popular as some others, and a directory service shouldn&#x27;t be necessary.<p>We had to setup Exim, Postfix or Sendmail for school. Sendmail was universally hated the most, Postfix came in second, and Exim was... well, not exactly logical or easy, but the best of the three mainstream MTAs.<p>I&#x27;m running hMailServer at home. Windows-only, unfortunately, but until I find a proper replacement, I&#x27;ll just keep running it in a VM. Nothing else even comes close in admin-friendliness. It&#x27;s just install and run, with either a local admin interface or a web interface (using PHP, so it runs anywhere).

I started running my own email server around 2014. I am using every mitigation I can find, but I still get an unending torrent of spam that slips through.<p>If tweaking spam filters and deleting spam is your idea of fun, then run your own email server.

I&#x27;ve run my own mail for about 15 years. Just recently stopped.There was nothing wrong with the process, it worked. But I thought about how much time I&#x27;ve spent on running my own domain and email over the last couple decades, and added up what it got me over those years... and the value just wasn&#x27;t there.<p>I know the article is concerned with owning your own data, and I appreciate the point. But finding a mail provider that meets your needs is, IMO, a better way to spend your time than just saying &quot;Gmail isn&#x27;t good for me, so I&#x27;ll do my own.&quot;

I use iRedMail and set up my own mail server for my small business. I am beginning to wish I hadn&#x27;t, even though I&#x27;ve had literally 0 problems outside of a single reboot to fix an issue.<p><a href="https:&#x2F;&#x2F;www.linuxbabe.com&#x2F;mail-server&#x2F;ubuntu-16-04-iredmail-server-installation" rel="nofollow">https:&#x2F;&#x2F;www.linuxbabe.com&#x2F;mail-server&#x2F;ubuntu-16-04-iredmail-...</a><p>I dunno. I feel like I&#x27;m sitting on a timebomb. It&#x27;s hosted on DigitalOcean and while it works great with RoundCube and gmail... eh. I dunno why I even did it in the first place.

&gt; Getting off GMail is one of the best ways to take back your data in the face of dragnet surveillance.<p>This just isn&#x27;t true. You can host your own mail server and GMail will probably still end up hosting a large fraction of the email you read and write, because <i>the people you correspond with</i> are still using GMail.<p>(In the same vein, you can refuse to have a Facebook account but Facebook probably has a dossier on you anyway. Enough people you know have dumped their contacts into Facebook that they already know your place in the social graph.)

Icing on the cake: Sprinkle a little Let&#x27;s Encrypt in there to cover SSL. It doesn&#x27;t take much to have a cron make a new cert and restart dovecot and postfix.<p>My setup is similar, but it uses MySQL instead of LDAP.<p>I love being able to make aliases and even better - deleting them when I&#x27;m done with them.

There&#x27;s no reason to not at least run mail-in-a-box if you consider yourself a technical person but have limited time. It&#x27;s absurdly easy to set up and the maintainers &#x2F; contributors do an awesome job.<p>Running your primary email on these big hosting companies is taking your privacy and pissing it right down the drain.<p>It&#x27;s really not that hard folks.<p><a href="https:&#x2F;&#x2F;mailinabox.email&#x2F;" rel="nofollow">https:&#x2F;&#x2F;mailinabox.email&#x2F;</a>

Author here - happy to respond to any questions.

Why not use solutions like iRedmail or Mail in a box?<p>iRedmail - <a href="https:&#x2F;&#x2F;www.iredmail.org&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.iredmail.org&#x2F;</a> Mail in a box - <a href="https:&#x2F;&#x2F;mailinabox.email&#x2F;" rel="nofollow">https:&#x2F;&#x2F;mailinabox.email&#x2F;</a><p>They allow you to setup your own mail server and yet make it easier to get started.<p>I have been using iRedmail and it has been working well so far.

Been running mine for almost 8 years.<p>Exim MTA, Courier IMAPD on Debian.<p>Pretty easy setup; nothing complicated.<p>For remote access I use two things: RoundCube webmail, and K-9 Mail on Android. For sending mail from K-9, I connect home, via authenticated SMTP which is on port 587, rather than 25.<p>I have developed a little web app called Tamarind for generating throw-away mail aliases.<p><a href="http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;tamarind&#x2F;tree&#x2F;" rel="nofollow">http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;tamarind&#x2F;tree&#x2F;</a><p>I run some mailing lists which use GNU Mailman. For archiving them, I don&#x27;t use that horrible pipermail, but rather a hacked version of Lurker. I patched Lurker to pass through HTML so that HTML mails end up rendered as HTML in the archive. The HTML has to be scrubbed, so I wrote a little scrubber for that:<p><a href="http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;hc&#x2F;tree&#x2F;" rel="nofollow">http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;hc&#x2F;tree&#x2F;</a><p>Lurker patches:<p><a href="http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;lurker&#x2F;" rel="nofollow">http:&#x2F;&#x2F;www.kylheku.com&#x2F;cgit&#x2F;lurker&#x2F;</a>

First, I&#x27;d start with &quot;Don&#x27;t run your own email server unless you <i>absolutely</i> have to.&quot;<p>Second, if you must... I&#x27;d recommend Mail-in-a-Box. <i>MUCH</i> easier to setup &#x2F; maintain than this one, at least from a cursory read. <a href="https:&#x2F;&#x2F;mailinabox.email" rel="nofollow">https:&#x2F;&#x2F;mailinabox.email</a>

Running your own personal, non-commercial server may be just fine. But if you’re business is pumping out volumes of email, no amount of DMARC, DKIM, SPF, CFL participation and fighting to stay off IP blacklists will prevent you from eventually succumbing to the user that clicks the Junk button to delete their emails. This will tank your domain’s reputation and get your emails routed to Junk (or silently discarded) for all recipients at the big ESPs like Gmail, etc. SPAM scoring is outsourced to companies like Symantec, CloudMark and others. They are the mail-zapping, score-keeping monoculture of the email ecosphere. You basically need a large company who will take your word for it that you’re not SPAMming and interface with the filtering industry on your behalf to de-nerf your domain once the Junkie McJunkbuttons of the Internet screw your reputation over.

It always makes me happy when a blog serves me less than 40kB to read an article!

Yeah, it&#x27;s learnable, it&#x27;s doable, it really doesn&#x27;t need to be all that hard.<p>And then ... after you&#x27;ve done every damned thing exactly by the book, and DKIM&#x27;ed the dickens out of your headers, killed the spam, policed yourself off the blacklists, etc. etc. - turns out you might as well not have bothered. The googles and the microsofts (the microsofts especially!) will one day drop your outgoing mail without the slightest notification, because the ip range, or because the full Moon, or just because they can.<p>I ran that show for nearly fifteen years, but threw in the towel last year, and handed over to Fastmail. With regret, although their service is first rate.<p>Email is <i>not</i> a succesful federated protocol these days. The monoliths effectively killed it off.

If you run your own mail server you can save a ton of work and time and get great defaults and features by using Sovereign from <a href="https:&#x2F;&#x2F;github.com&#x2F;sovereign&#x2F;sovereign" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;sovereign&#x2F;sovereign</a>

Love this, I spend many nights in the past fiddling with email.. and giving up. But I manged to get it to work one day and I learned a lot! I started with [0], but eventually found the mail-stack-delivery package in the Ubuntu repos, it sets up almost everything correctly out of the box and I ran with that. While Googling that package name I found this: [1], may also be nice.<p>I also learned that having it in your basement means trouble: Someone pulls the plug, your IP changes or ends up on a spam list. For some years I ran my own server on a DO droplet. It is very cost effective when you can make as much mailboxes as you want for family (+ unlimited aliases, addresses that deliver to both you and your wife, being able to email 500 mb to familie, etc). I still don&#x27;t know down what sinkhole emails to my brother-in-law&#x27;s outlook.com address went down. The literal response of MS at the time: We don&#x27;t manage our own spam filter, try adding more text, make it look more real...<p>But man, the pain, the complexity, the reverse DNS, the startTLS, the SPF record, the DKIM records. It took me a long time to understand the difference between mail servers and MTAs and why there are different ports for them. Also, few providers in the Netherlands even allow you to use port 25, luckily mine did. Email is truly an old protocol that has been hacked up-to-date (more or less) and setting up your own mail server will make this very clear to you :)<p>I&#x27;d recommend it though, you&#x27;ll learn a lot! But to be honest, I now pay 3 euros a months to a dutch email provider because email is too important and I didn&#x27;t want to go through the pain again when 16.04 came out. I might still have a go at it in the future, there is something beautiful about running your own email server :)<p>[0] <a href="https:&#x2F;&#x2F;arstechnica.com&#x2F;information-technology&#x2F;2014&#x2F;02&#x2F;how-to-run-your-own-e-mail-server-with-your-own-domain-part-1&#x2F;" rel="nofollow">https:&#x2F;&#x2F;arstechnica.com&#x2F;information-technology&#x2F;2014&#x2F;02&#x2F;how-t...</a><p>[1] <a href="https:&#x2F;&#x2F;www.iredmail.org&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.iredmail.org&#x2F;</a>

This is a very good guide.<p>One nice thing about the programs he chose is that their config options are fairly stable (can&#x27;t vouch for Solr). That many moving pieces would be absolutely unmanageable if the options changed frequently. Been using a similar setup for years without difficulties.<p>Adding something like <i>fail2ban</i> into the mix wouldn&#x27;t hurt.<p>If you&#x27;re going to do this, <i>first</i> check that your VPS &#x2F; ISP allow inbound traffic to port 25&#x2F;tcp. AWS allows it upon special request. GCE doesn&#x27;t. Don&#x27;t know about the others. In the US, most <i>residential</i> ISPs block 25&#x2F;tcp inbound.

The configuration of mail servers is so unbelievably grueling, it can almost reduce one to tears! I love having my email and data on my own server, but it is horrendously time consuming to get it up and running, and if something goes wrong, you could be looking at a weekend of work (often involving trial and error with poorly documented config formats). Sometimes I wish email could be replaced with something simpler but just as ubiquitous. <i>Sigh</i>

If youre running your own email services and wonder why outlook.com &#x2F; hotmail.com are blocking you you can signup for this. <a href="https:&#x2F;&#x2F;postmaster.live.com&#x2F;snds" rel="nofollow">https:&#x2F;&#x2F;postmaster.live.com&#x2F;snds</a><p>Its useful as quite often youll get blocked just for being in the same IP block as a spammy server. My experience to date is that once you notify them your IP isnt the culprit the block gets removed pretty quick.

Usually you are supposed to add a year to older articles :)<p>Curious if you looked into other mail server options? I mean Postfix (not Postgres) easily handles the load of a single user, but it is still rather hard to configure and modify.<p>I recently started to work with Haraka and even thought its ment for high traffic use cases i wont ever look back to Postfix (not Postgres).

I ran my own mail server for a few months in 2013. I came to the conclusion I&#x27;d much rather pay Google $5 a month.

Looking at that postfix main.cf gave me flashbacks and not in a good way. Google can have it. Or ProtonMail. Running my own mail server didn&#x27;t pay enough ($0) for the complaints I got from its users (family). I&#x27;ll focus on VoIP PBX and home automation until someone gobbles that up too.

This is an insightful guide on how email works.<p>Instead of running each component individually, I would recommend looking at something like Zimbra or another OSS mail package that handles a lot of this.<p>I hosted my own email for over 10 years and maintaining the bits are as painful if you don&#x27;t have a plan in place.<p>A decent comparable for do-it-yourself hosting is the kind of luck a product like MDaemon provides - it decent job on windows of rolling all the features into a reasonably manageable server, as well as being quite affordable. I don&#x27;t work for MDaemon, but tools like this make hosting email relatively trivial.<p><a href="http:&#x2F;&#x2F;www.altn.com&#x2F;Products&#x2F;MDaemon-Email-Server-Windows&#x2F;" rel="nofollow">http:&#x2F;&#x2F;www.altn.com&#x2F;Products&#x2F;MDaemon-Email-Server-Windows&#x2F;</a>

I&#x27;ve hosted my own mail server for a while. I&#x27;ve gone the Postfix&#x2F;Dovecot route, I&#x27;ve used qmail, etc. My current setup is WebMin&#x2F;VirtualMin. It works really well, and will run on the cheapest DO droplet.<p>Fighting spam effectively is not trivial.

Existing mail server solutions seemed so complicated and just plain wrong that I went and wrote my own mail server software from scratch <a href="https:&#x2F;&#x2F;wildduck.email&#x2F;" rel="nofollow">https:&#x2F;&#x2F;wildduck.email&#x2F;</a>

This isn&#x27;t bad. I ended up creating an Ansible role to do it for me, and it works great.<p>I thought about Fastmail, but its too expensive when you want to do more than one email address or domain. I run mine on a $5 server from DigitalOcean.

I run my own outbound mail server for my infra. I couldn&#x27;t justify paying a 3rd party just to make my mail more deliverable. I understand the cat&#x2F;mouse game of spam but that should not prevent the rest of the world from running thier own email services.<p>I also accept inbound mx for some of my personal domains, but I don&#x27;t currently manage my own mailboxes, the mail gets aliased to my Gmail account.<p>If at some point I get fed up with this arrangement I can transparently change where the email ends up.

I run my own mail server that I coded myself (<a href="https:&#x2F;&#x2F;github.com&#x2F;sfilargi&#x2F;puremail" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;sfilargi&#x2F;puremail</a>).<p>It&#x27;s basically a single binary that has an SMTP server and webmail server. It works absolutely fine for me without much stress. I do hit a couple of bugs here and there, mainly on the mail parsing, but it&#x27;s not big deal.

Regarding web mail: I am much happier with RainLoop [1] than I was with roundcube (better usability). If you are running a Nextcloud anyway, their mail app might be enough[2].<p>[1]: <a href="https:&#x2F;&#x2F;www.rainloop.net" rel="nofollow">https:&#x2F;&#x2F;www.rainloop.net</a><p>[2]: <a href="https:&#x2F;&#x2F;apps.nextcloud.com&#x2F;apps&#x2F;mail" rel="nofollow">https:&#x2F;&#x2F;apps.nextcloud.com&#x2F;apps&#x2F;mail</a>

I appreciate the write-up! I always wanted to do a similar write-up for my own setup, but I never got around to it. (My setup uses slightly with different components: exim+dovecot+spamassassin+openldap.)<p>However, after reading this, the software developer in me feels like &quot;These tutorials should not be necessary.&quot;<p>This should be a GitHub repo, trivial to fork and trivial to test out locally for anyone.

Honestly if you&#x27;re lazy or want the support it might be nice to get the VPS cPanel license. It sets it up for you with full customization allowed. It also has spamassassin with RBL support in the interface. I think it&#x27;s $17~ a month excluding VPS cost. You&#x27;ll also get so many other features that can be disabled.

Slightly tangential, but is there something for RSpamd, where it can be run as just a blind mail relay?<p>I.E. like this:<p><pre><code> Internet Email (SMTP) -&gt; [MTA + Rspamd] -&gt; [Real MTA + Inboxes] </code></pre> I ask because I&#x27;ve got a mail server system I&#x27;m happy with, but just want to bolt a better anti-spam filtering system on <i>in front</i> of it.<p>Thanks.

Would a better and easier alternative be to run your mail service through AWS?[1]<p>Sure it&#x27;s _hosted_ in a centralised place but since you&#x27;re paying for it Amazon shouldn&#x27;t have an incentive to harvest your data.<p>[1]: <a href="https:&#x2F;&#x2F;aws.amazon.com&#x2F;ses&#x2F;" rel="nofollow">https:&#x2F;&#x2F;aws.amazon.com&#x2F;ses&#x2F;</a>

I have an old server that I need to migrate. It uses exim4 and pipes email to programs for certain addresses, and needs to send out automated email for forgotten passwords, etc. Is it worth moving to Postfix or something better? This is the part of the migration I look forward to the least.

Does any else remember Matt Simerson‘s FreeBSD Mail Toaster script? Seems like he’s still working on it: <a href="https:&#x2F;&#x2F;github.com&#x2F;msimerson&#x2F;Mail-Toaster" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;msimerson&#x2F;Mail-Toaster</a>

Is there any modern webmail client that&#x27;s secure and easy to set up? I know about Squirrel Mail and there was another one using the Horde framework, but I&#x27;d rather use a uwSGI&#x2F;PSGI app that preferably doesn&#x27;t need a mySQL database.

I run my own email server as well and the problem I see with it is that Google has all my email anyway -- probably 90% of the people I communicate with use gmail, so even if I don&#x27;t, most of my sent mail is already in their system anyway.

Thanks for posting this. I&#x27;m currently running a similar setup and to me it&#x27;s a horrible technical debt. Any ideas how to migrate multiple mailboxes for multiple domains to a managed solution?

I&#x27;ve been pretty happy paying Fastmail to run my email server for me.

Isn&#x27;t it possible to make all these changes in a server and make it available as a docker container or VM (with minimal customization required for end users?)

&gt; Luckily, running your own mail server is not as daunting as many would have you believe<p>Looks pretty daunting to me

I run my own mail server. Have done since Evolution mail was in BETA circa 2003 ish (time flies). Started with a Linux Mandrake based Postfix, Procmail, Dovecot, Fetchmail setup with SpamAssassin then moved onto a proper Debian setup with Exim, Courier, Procmail, SpamAssassin and then finally after all that faff I found Zimbra.<p>If you like email Zimbra&#x27;s great - it&#x27;s a fully baked mail server which you install on your Linux distro of choice and it goes off and installs all of the above for you. Everything is managed via a GUI and you have a great web interface and standards based IMAP, CalDAV support.<p>If you buy the paid version you can even get ActiveSync and Exchange Web Services for it.<p>Despite all that though, I would give anything to have all those countless hours I put into running my own mail server back. It is a colossal time sink. I can&#x27;t even stress how much work it is, especially if you have anyone relying on the box for their primary mail account. It&#x27;s no fun at all.<p>You&#x27;re gonna be debugging Fetchmail for when you or your user&#x27;s want POP3 accounts downloading mail locally. Procmail for filtering. SpamAssassin (gawd if ever there was something which consumed my life it&#x27;s that software and its myriad libs and helpers), not to mention familiarize yourself with DNS MX records, SPF, DKIM etc. etc.<p>All of the above works surprisingly well and is fairly solid - until it isn&#x27;t. When Google added DKIM&#x2F;SPF protection and blacklisted servers which didn&#x27;t was a fun weekend that I&#x27;d rather have spent with my family. When customer emails started bouncing because their IPs had hit an over zealous RBL list which Zimbra was using was a fun afternoon of debugging. When Zimbra decides to randomly let in 10-20 spam emails a day into my mailbox is another weekend project which I&#x27;ve yet to get round to. Thank god I&#x27;m self employed is all I can say because no employer would tolerate an employee putting the care and feeding required to maintain a personal email server!<p>Unless you want to nurture a career as a mail sysadmin seriously, don&#x27;t host your own mail server.<p>Bottom line I&#x27;d recommend to anyone thinking about hosting one to either:<p>1. Don&#x27;t<p>2. Use Microsoft Exchange Server<p>3. Use Zimbra<p>4. Seriously, don&#x27;t - consider Fastmail, Gmail, O365 or Protonmail instead.

What webmail client people tried with their own setup that they like?

Also it&#x27;s alot of work.

One thing I&#x27;d like to see covered is sender dependent outgoing mail routing.<p>For example, suppose I have things set up so all outgoing mail from my home goes through my SMTP server. If I send an email with a from address of tzs@mydomain, then the setup in the article is perfect.<p>Suppose, though, I send an email from home with my from address set to tzs@employer, where &quot;employer&quot; is my employer&#x27;s domain? Assume this email is not to an @employer address [1]. With the setup in the article (and in almost every other similar setup I&#x27;ve seen covered in similar articles) this might run into spam filter issues unless I&#x27;ve convinced my employer to add my SMTP server to their SPF record.<p>The way I want this to be handled is for my SMTP server to see that the mail is from an @employer address, and instead of trying to deliver it directly, relay it through employer&#x27;s SMTP server.<p>This is similar to the common &quot;smart host&quot; configuration often used when you run an SMTP server at home, but want it to send all outgoing mail through your ISP&#x27;s SMTP server instead of trying direct delivery. Essentially what I want is a conditional smart host based on the from address.<p>Postfix supports this. In fact, it seems to support it in a couple different ways. I played with it a bit but could not quite get it working.<p>What I&#x27;m doing for now, until I find out how to do it right, is only send work email outside of work from my desktop Mac. I took tzs@employer off the list of mail aliases for my mydomain mail account, and created a second account in Apple Mail for @employer. I set the incoming mail server to POP3 on 127.0.0.1 so that it would fail, and set the outgoing server to smtp.employer. It complained for a while that it could not contact the POP3 server, but eventually stopped complaining, and the address in the configuration dialog changed to 0.0.0.0.<p>With that setup Apple Mail sends mail from @employer directly to my employer&#x27;s SMTP.<p>Sometime recently, after an OS update, that stopped working. It would no longer let me enable an account unless it could successfully talk to the incoming mail server for that account.<p>I did find an ugly workaround for that. I gave it the correct address for employer&#x27;s POP3 server, and the correct password. Once it was happy, I went to Keychain Access, found the saved password for the POP3 server, and changed it in Keychain Access to something incorrect. Mail then complains that it cannot login to the POP3 server, but that does not cause it to disable the account. Net effect: a send only account in Apple Mail. (It is important to do the password change in Keychain Access, not in Mail, because Mail won&#x27;t save the change until it sees the new password work).<p>(If that had not worked, I probably would have written a dummy POP3 server that always reports no mail and used that).<p>[1] This happens reasonably often for me, because I have my mail server set up to use fetchmail to fetch my incoming work email and deliver it via procmail. Same for any other SMTP accounts I have. That way I only have to configure mail clients to work with mail server and I get access to all my mail from all of my non-web email accounts.

Email is always a nightmare. My ex runs a BSD mail server that seems to work alright (and he has a cloud service that will handle mail in the event of a server failure). Me? I pay Fastmail like $50&#x2F;year to do that for me, and they’re wonderful. I tried to sign up for a trial with my own domain, and when I got a strange error that didn’t let me log in, I put in a ticket (as a non-customer) and the issue was rectified quickly.<p>I swear, I don’t work for Fastmail, but I’d much rather use them (or any email provider that is halfway decent) than fiddle with my own mail server.

A docker container would really be useful for that !

I&#x27;ve done this, more than once, both for ISPs and personally.<p>I even put together a self-contained single-DVD installer that would install and set everything up securely and solidly. (I don&#x27;t think I have a copy any longer and if I did it&#x27;s very out of date)<p>I still don&#x27;t recommend doing it. Even for the security-concious. It&#x27;s just not worth it.

I&#x27;d like to run a mail server on a jailbroken iPhone.<p>The use case is to transfer arbitrary files over a local hotspot.<p>I tried installing from the Apple TV tutorial, but it put my iPhone in a boot loop.<p><a href="http:&#x2F;&#x2F;ios-webstack.tk&#x2F;imap" rel="nofollow">http:&#x2F;&#x2F;ios-webstack.tk&#x2F;imap</a><p>Just a chance, but are there any iOS jailbreakers here who could advise?